Autolab icon indicating copy to clipboard operation
Autolab copied to clipboard

Published 20 hours ago verified publisher icon autolab

Escape filename passed into ctags

Open victorhuangwq opened this issue 1 year ago • 1 comments

victorhuangwq avatar Jan 29 '23 19:01 victorhuangwq

We ought to sanitize the handin file path in general (perhaps by taking inspiration from github_integration.rb's ALLOWED CHARS)

Possible exploit vectors include user email and handin filename

damianhxy avatar May 31 '23 14:05 damianhxy